The product does not validate, or incorrectly validates, a certificate.
1,395 vulnerabilities with CWE-295
CVE-2025-23091
MEDIUM
Ubiquiti UniFi OS < 4.1.13 - Improper Certificate Validation
CVSS 5.9
CVE-2025-0501
HIGH
Amazon WorkSpaces - Man-In-The-Middle
CVSS 7.5
CVE-2025-0500
HIGH
Amazon WorkSpaces, AppStream, and DCV Clients - Certificate Validation Session Exposure
CVSS 7.5
CVE-2025-20126
MEDIUM
Cisco ThousandEyes Endpoint Agent - Info Disclosure
CVSS 4.8
CVE-2025-0239
MEDIUM
Firefox < 134 & Thunderbird < 128.6 - SSL Validation
CVSS 4.0
CVE-2024-14024
MEDIUM
QNAP Video Station 5.0.0-5.8.1 - Improper Certificate Validation
CVSS 6.7
CVE-2024-13990
CRITICAL
MicroWorld eScan AV - Unauthenticated Remote Code Execution via Update Mechanism Man-in-the-Middle Attack
CVE-2024-31854
HIGH
SICAM TOOLBOX II < V07.11 - Man-in-the-Middle
CVSS 8.1
CVE-2024-31853
HIGH
SICAM TOOLBOX II < V07.11 - Man-in-the-Middle
CVSS 8.1
CVE-2024-13956
MEDIUM
ASPECT <3.* - SSL Verification Bypass
CVSS 6.7
CVE-2024-45641
MEDIUM
IBM Security ReaQta EDR 3.12-3.12.16 - Improper SSL Certificate Validation
CVSS 6.5
CVE-2024-47619
HIGH
syslog-ng < 4.8.2 - Improper Certificate Validation in TLS Wildcard Matching
CVSS 7.5
CVE-2024-42193
HIGH
HCL BigFix Platform 10.0.0-10.0.12 - Improper Certificate Validation
CVSS 8.1
CVE-2024-10445
MEDIUM
Synology BeeStation OS < 1.1-65374 and DiskStation Manager < 6.2.4-25556-8 - Improper Certificate Validation
CVSS 4.3
CVE-2024-10444
HIGH
Synology DiskStation Manager < 7.1.1-42962-8 - Improper Certificate Validation in LDAP Utilities
CVSS 7.5
CVE-2024-40590
MEDIUM
FortiPortal <7.4.0 - Info Disclosure
CVSS 4.8
CVE-2024-43107
HIGH
Gallagher MIP <4.0.32 - Unauthenticated RCE
CVSS 7.2
CVE-2024-41724
HIGH
Gallagher Command Centre <9.20.1043 - RCE
CVSS 8.7
CVE-2024-50394
HIGH
QNAP Helpdesk 3.3.1-3.3.2 - Improper Certificate Validation
CVSS 8.8
CVE-2024-41334
HIGH
Draytek Vigor Routers - Unauthenticated Arbitrary Code Execution via APPE Module Upload
CVSS 8.8
CVE-2024-55581
HIGH
Ada Web Server 25.0.0 - Improper Certificate Validation in AWS.Client
CVSS 7.4
CVE-2024-50691
HIGH
SunGrow iSolarCloud < 2.1.6.20241115 - Missing SSL Certificate Validation
CVSS 7.4
CVE-2024-49782
MEDIUM
IBM OpenPages with Watson <9.0 - SSRF
CVSS 6.8
CVE-2024-29171
MEDIUM
Dell BSAFE SSL-J < 6.6 and 7.0-7.2 - Improper Certificate Validation
CVSS 5.9
CVE-2024-11621
HIGH
Drm <2024.3.9.0 - Man-in-the-middle
CVSS 8.8
Details
Vulnerabilities
1,395